KNOW YOUR SCORE
Everyone is at risk from email fraudsters. How do we score your domain safety?
AufiDmarc has developed an algorithm that rates an organisation’s exposure to fraudulent email activities such as impersonation, phishing and spoofing, and the risk their current domain poses to the cyber security of their company.
CHECK YOUR SCORE
The organization is assigned a score between 1 and 10.
A score of seven (7) indicates a high level of risk.
Although some security measures are in place, they are not sufficient to fully protect the domain, which may allow for spoofing or misuse of the email account.
A score of eight (8) indicates a high level of risk.
The configuration has significant flaws that can affect both the security and delivery of legitimate emails, leaving the domain vulnerable to phishing attacks.
A score of nine (9) indicates a very high risk level.
The domain has poor protection and is highly vulnerable to being used by third parties for fraudulent activities.
A score of ten (10) indicates a critical risk.
The domain is not properly secured, making it easy for identity theft and the uncontrolled sending of fraudulent emails.
HOW WE COME TO YOUR SCORE
The final rating is a combination of a score related to your DMARC posture added to a score that is given for your SPF posture, and an average calculated
When determining your organization’s DMARC score, the starting point is always a maximum score of 10. This score reflects the optimal level of domain protection.
From there, the presence or absence of a DMARC record is key: if it doesn’t exist, the organization automatically receives a score of 0. Conversely, having a DMARC record allows you to maintain a minimum baseline for evaluation and begin improving security.
For organizations that do have a DMARC record, various criteria related to its configuration, implementation, and status are analyzed. Based on these factors, deductions are applied that can reduce the overall score.
When determining an organization’s SPF score, the starting point, as with DMARC, is a baseline score of 5. This initial score represents a minimum level of configuration but does not guarantee complete protection.
From there, eight (8) key criteria related to the configuration and operation of the SPF record are analyzed. Depending on the impact and risk associated with each criterion, deductions of between 1 and 2 points are applied.
The final result reflects the actual level of domain security. It is important to note that, although the maximum possible score is 10, a score of 7 or higher already indicates a high level of risk. This means that the SPF configuration may not be adequately protecting against email misuse, such as spoofing or identity theft.
An organization’s overall score is calculated by averaging its DMARC and SPF scores. This result is expressed on a scale of 0 to 10.
This final score provides an overview of the domain’s email security. The lower the score, the higher the risk of threats such as phishing or fraudulent domain use.
It’s important to note that while the maximum score is 10, a score of 7 or higher already indicates a high level of risk. This means that the current configuration may not be adequately protecting the domain and requires review.